updating a key's self-signature
vedaal at hush.com
vedaal at hush.com
Wed Jan 4 04:59:08 CET 2006
>Message: 8
>Date: Tue, 3 Jan 2006 19:43:01 -0500
>From: David Shaw <dshaw at jabberwocky.com>
>Subject: Re: updating a key's self-signature
>Yes, but note that it's still possible for someone to get the old
>self-sig from a keyserver.
what good would that do anyone once the old signature hash is no
longer trusted,
and the key is updated with the new one ?
>Anyway, do this:
>
>gpg --expert --cert-digest-algo (thehash) -u (thekeyid) --sign-key
>(thekeyid)
ok, Thanks!
worked perfectly,
updated key with new self-sig already uploaded
>Despite the recent attacks, I'd use SHA-1.
i'd prefer whirpool, but settled for sha-256 ;-)
>Why did you self-sign a v4 RSA key with MD5 anyway?
wasn't my choice ;-(
(relatively 'old' key, circa 2001)
was all that was available at the time from pgp,
and gnupg wasn't allowing 4k keys yet
vedaal
Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480
Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485
More information about the Gnupg-users
mailing list